CVE-2007-4535

Name of the Vulnerable Software and Affected Versions Vavoom versions 1.24 and earlier

Description The issue allows remote attackers to cause a denial of service, resulting in a daemon crash. This is achieved by sending a string with a negative NewLen value within a certain UDP packet, which triggers an assertion error in the VStr::Resize function.

Recommendations For versions 1.24 and earlier, as a temporary workaround, consider disabling the VStr::Resize function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.